npm - mstro-app - Versions diffs - 0.1.47 - Mend

mstro-app 0.1.47

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (213) hide show

package/LICENSE +21 -0
package/README.md +177 -0
package/bin/commands/config.js +145 -0
package/bin/commands/login.js +313 -0
package/bin/commands/logout.js +75 -0
package/bin/commands/status.js +197 -0
package/bin/commands/whoami.js +161 -0
package/bin/configure-claude.js +298 -0
package/bin/mstro.js +581 -0
package/bin/postinstall.js +45 -0
package/bin/release.sh +110 -0
package/dist/server/cli/headless/claude-invoker.d.ts +17 -0
package/dist/server/cli/headless/claude-invoker.d.ts.map +1 -0
package/dist/server/cli/headless/claude-invoker.js +311 -0
package/dist/server/cli/headless/claude-invoker.js.map +1 -0
package/dist/server/cli/headless/index.d.ts +13 -0
package/dist/server/cli/headless/index.d.ts.map +1 -0
package/dist/server/cli/headless/index.js +10 -0
package/dist/server/cli/headless/index.js.map +1 -0
package/dist/server/cli/headless/mcp-config.d.ts +11 -0
package/dist/server/cli/headless/mcp-config.d.ts.map +1 -0
package/dist/server/cli/headless/mcp-config.js +76 -0
package/dist/server/cli/headless/mcp-config.js.map +1 -0
package/dist/server/cli/headless/output-utils.d.ts +33 -0
package/dist/server/cli/headless/output-utils.d.ts.map +1 -0
package/dist/server/cli/headless/output-utils.js +101 -0
package/dist/server/cli/headless/output-utils.js.map +1 -0
package/dist/server/cli/headless/prompt-utils.d.ts +21 -0
package/dist/server/cli/headless/prompt-utils.d.ts.map +1 -0
package/dist/server/cli/headless/prompt-utils.js +84 -0
package/dist/server/cli/headless/prompt-utils.js.map +1 -0
package/dist/server/cli/headless/runner.d.ts +24 -0
package/dist/server/cli/headless/runner.d.ts.map +1 -0
package/dist/server/cli/headless/runner.js +99 -0
package/dist/server/cli/headless/runner.js.map +1 -0
package/dist/server/cli/headless/types.d.ts +106 -0
package/dist/server/cli/headless/types.d.ts.map +1 -0
package/dist/server/cli/headless/types.js +4 -0
package/dist/server/cli/headless/types.js.map +1 -0
package/dist/server/cli/improvisation-session-manager.d.ts +155 -0
package/dist/server/cli/improvisation-session-manager.d.ts.map +1 -0
package/dist/server/cli/improvisation-session-manager.js +415 -0
package/dist/server/cli/improvisation-session-manager.js.map +1 -0
package/dist/server/index.d.ts +2 -0
package/dist/server/index.d.ts.map +1 -0
package/dist/server/index.js +386 -0
package/dist/server/index.js.map +1 -0
package/dist/server/mcp/bouncer-cli.d.ts +3 -0
package/dist/server/mcp/bouncer-cli.d.ts.map +1 -0
package/dist/server/mcp/bouncer-cli.js +99 -0
package/dist/server/mcp/bouncer-cli.js.map +1 -0
package/dist/server/mcp/bouncer-integration.d.ts +36 -0
package/dist/server/mcp/bouncer-integration.d.ts.map +1 -0
package/dist/server/mcp/bouncer-integration.js +301 -0
package/dist/server/mcp/bouncer-integration.js.map +1 -0
package/dist/server/mcp/security-audit.d.ts +52 -0
package/dist/server/mcp/security-audit.d.ts.map +1 -0
package/dist/server/mcp/security-audit.js +118 -0
package/dist/server/mcp/security-audit.js.map +1 -0
package/dist/server/mcp/security-patterns.d.ts +73 -0
package/dist/server/mcp/security-patterns.d.ts.map +1 -0
package/dist/server/mcp/security-patterns.js +247 -0
package/dist/server/mcp/security-patterns.js.map +1 -0
package/dist/server/mcp/server.d.ts +3 -0
package/dist/server/mcp/server.d.ts.map +1 -0
package/dist/server/mcp/server.js +146 -0
package/dist/server/mcp/server.js.map +1 -0
package/dist/server/routes/files.d.ts +9 -0
package/dist/server/routes/files.d.ts.map +1 -0
package/dist/server/routes/files.js +24 -0
package/dist/server/routes/files.js.map +1 -0
package/dist/server/routes/improvise.d.ts +3 -0
package/dist/server/routes/improvise.d.ts.map +1 -0
package/dist/server/routes/improvise.js +72 -0
package/dist/server/routes/improvise.js.map +1 -0
package/dist/server/routes/index.d.ts +10 -0
package/dist/server/routes/index.d.ts.map +1 -0
package/dist/server/routes/index.js +12 -0
package/dist/server/routes/index.js.map +1 -0
package/dist/server/routes/instances.d.ts +10 -0
package/dist/server/routes/instances.d.ts.map +1 -0
package/dist/server/routes/instances.js +47 -0
package/dist/server/routes/instances.js.map +1 -0
package/dist/server/routes/notifications.d.ts +3 -0
package/dist/server/routes/notifications.d.ts.map +1 -0
package/dist/server/routes/notifications.js +136 -0
package/dist/server/routes/notifications.js.map +1 -0
package/dist/server/services/analytics.d.ts +56 -0
package/dist/server/services/analytics.d.ts.map +1 -0
package/dist/server/services/analytics.js +240 -0
package/dist/server/services/analytics.js.map +1 -0
package/dist/server/services/auth.d.ts +26 -0
package/dist/server/services/auth.d.ts.map +1 -0
package/dist/server/services/auth.js +71 -0
package/dist/server/services/auth.js.map +1 -0
package/dist/server/services/client-id.d.ts +10 -0
package/dist/server/services/client-id.d.ts.map +1 -0
package/dist/server/services/client-id.js +61 -0
package/dist/server/services/client-id.js.map +1 -0
package/dist/server/services/credentials.d.ts +39 -0
package/dist/server/services/credentials.d.ts.map +1 -0
package/dist/server/services/credentials.js +110 -0
package/dist/server/services/credentials.js.map +1 -0
package/dist/server/services/files.d.ts +119 -0
package/dist/server/services/files.d.ts.map +1 -0
package/dist/server/services/files.js +560 -0
package/dist/server/services/files.js.map +1 -0
package/dist/server/services/instances.d.ts +52 -0
package/dist/server/services/instances.d.ts.map +1 -0
package/dist/server/services/instances.js +241 -0
package/dist/server/services/instances.js.map +1 -0
package/dist/server/services/pathUtils.d.ts +47 -0
package/dist/server/services/pathUtils.d.ts.map +1 -0
package/dist/server/services/pathUtils.js +124 -0
package/dist/server/services/pathUtils.js.map +1 -0
package/dist/server/services/platform.d.ts +72 -0
package/dist/server/services/platform.d.ts.map +1 -0
package/dist/server/services/platform.js +368 -0
package/dist/server/services/platform.js.map +1 -0
package/dist/server/services/sentry.d.ts +5 -0
package/dist/server/services/sentry.d.ts.map +1 -0
package/dist/server/services/sentry.js +71 -0
package/dist/server/services/sentry.js.map +1 -0
package/dist/server/services/terminal/pty-manager.d.ts +149 -0
package/dist/server/services/terminal/pty-manager.d.ts.map +1 -0
package/dist/server/services/terminal/pty-manager.js +377 -0
package/dist/server/services/terminal/pty-manager.js.map +1 -0
package/dist/server/services/terminal/tmux-manager.d.ts +82 -0
package/dist/server/services/terminal/tmux-manager.d.ts.map +1 -0
package/dist/server/services/terminal/tmux-manager.js +352 -0
package/dist/server/services/terminal/tmux-manager.js.map +1 -0
package/dist/server/services/websocket/autocomplete.d.ts +50 -0
package/dist/server/services/websocket/autocomplete.d.ts.map +1 -0
package/dist/server/services/websocket/autocomplete.js +361 -0
package/dist/server/services/websocket/autocomplete.js.map +1 -0
package/dist/server/services/websocket/file-utils.d.ts +44 -0
package/dist/server/services/websocket/file-utils.d.ts.map +1 -0
package/dist/server/services/websocket/file-utils.js +272 -0
package/dist/server/services/websocket/file-utils.js.map +1 -0
package/dist/server/services/websocket/handler.d.ts +246 -0
package/dist/server/services/websocket/handler.d.ts.map +1 -0
package/dist/server/services/websocket/handler.js +1771 -0
package/dist/server/services/websocket/handler.js.map +1 -0
package/dist/server/services/websocket/index.d.ts +11 -0
package/dist/server/services/websocket/index.d.ts.map +1 -0
package/dist/server/services/websocket/index.js +14 -0
package/dist/server/services/websocket/index.js.map +1 -0
package/dist/server/services/websocket/types.d.ts +214 -0
package/dist/server/services/websocket/types.d.ts.map +1 -0
package/dist/server/services/websocket/types.js +4 -0
package/dist/server/services/websocket/types.js.map +1 -0
package/dist/server/utils/agent-manager.d.ts +69 -0
package/dist/server/utils/agent-manager.d.ts.map +1 -0
package/dist/server/utils/agent-manager.js +269 -0
package/dist/server/utils/agent-manager.js.map +1 -0
package/dist/server/utils/paths.d.ts +25 -0
package/dist/server/utils/paths.d.ts.map +1 -0
package/dist/server/utils/paths.js +38 -0
package/dist/server/utils/paths.js.map +1 -0
package/dist/server/utils/port-manager.d.ts +10 -0
package/dist/server/utils/port-manager.d.ts.map +1 -0
package/dist/server/utils/port-manager.js +60 -0
package/dist/server/utils/port-manager.js.map +1 -0
package/dist/server/utils/port.d.ts +26 -0
package/dist/server/utils/port.d.ts.map +1 -0
package/dist/server/utils/port.js +83 -0
package/dist/server/utils/port.js.map +1 -0
package/hooks/bouncer.sh +138 -0
package/package.json +74 -0
package/server/README.md +191 -0
package/server/cli/headless/claude-invoker.ts +415 -0
package/server/cli/headless/index.ts +39 -0
package/server/cli/headless/mcp-config.ts +87 -0
package/server/cli/headless/output-utils.ts +109 -0
package/server/cli/headless/prompt-utils.ts +108 -0
package/server/cli/headless/runner.ts +133 -0
package/server/cli/headless/types.ts +118 -0
package/server/cli/improvisation-session-manager.ts +531 -0
package/server/index.ts +456 -0
package/server/mcp/README.md +122 -0
package/server/mcp/bouncer-cli.ts +127 -0
package/server/mcp/bouncer-integration.ts +430 -0
package/server/mcp/security-audit.ts +180 -0
package/server/mcp/security-patterns.ts +290 -0
package/server/mcp/server.ts +174 -0
package/server/routes/files.ts +29 -0
package/server/routes/improvise.ts +82 -0
package/server/routes/index.ts +13 -0
package/server/routes/instances.ts +54 -0
package/server/routes/notifications.ts +158 -0
package/server/services/analytics.ts +277 -0
package/server/services/auth.ts +80 -0
package/server/services/client-id.ts +68 -0
package/server/services/credentials.ts +134 -0
package/server/services/files.ts +710 -0
package/server/services/instances.ts +275 -0
package/server/services/pathUtils.ts +158 -0
package/server/services/platform.test.ts +1314 -0
package/server/services/platform.ts +435 -0
package/server/services/sentry.ts +81 -0
package/server/services/terminal/pty-manager.ts +464 -0
package/server/services/terminal/tmux-manager.ts +426 -0
package/server/services/websocket/autocomplete.ts +438 -0
package/server/services/websocket/file-utils.ts +305 -0
package/server/services/websocket/handler.test.ts +20 -0
package/server/services/websocket/handler.ts +2047 -0
package/server/services/websocket/index.ts +40 -0
package/server/services/websocket/types.ts +339 -0
package/server/tsconfig.json +19 -0
package/server/utils/agent-manager.ts +323 -0
package/server/utils/paths.ts +45 -0
package/server/utils/port-manager.ts +70 -0
package/server/utils/port.ts +102 -0

package/server/index.ts ADDED Viewed

@@ -0,0 +1,456 @@
+// Copyright (c) 2025-present Mstro, Inc. All rights reserved.
+// Licensed under the MIT License. See LICENSE file for details.
+/**
+ * Mstro Server (Node.js + Hono)
+ */
+import { randomBytes } from 'node:crypto'
+import { existsSync, mkdirSync, readFileSync, writeFileSync } from 'node:fs'
+import type { IncomingMessage } from 'node:http'
+import { basename, join } from 'node:path'
+import { serve } from '@hono/node-server'
+import { Hono } from 'hono'
+import { cors } from 'hono/cors'
+import { logger } from 'hono/logger'
+import { type WebSocket as NodeWebSocket, WebSocketServer } from 'ws'
+// Import route creators
+import {
+  createFileRoutes,
+  createImproviseRoutes,
+  createInstanceRoutes,
+  createNotificationRoutes,
+  createShutdownRoute
+} from './routes/index.js'
+import { AnalyticsEvents, initAnalytics, shutdownAnalytics, trackEvent } from './services/analytics.js'
+import { AuthService } from './services/auth.js'
+import { FileService } from './services/files.js'
+import { InstanceRegistry } from './services/instances.js'
+import { PlatformConnection } from './services/platform.js'
+import { captureException, flushSentry, initSentry } from './services/sentry.js'
+import { getPTYManager } from './services/terminal/pty-manager.js'
+import { WebSocketImproviseHandler } from './services/websocket/index.js'
+import type { WSContext } from './services/websocket/types.js'
+import { findAvailablePort } from './utils/port.js'
+/**
+ * Set the terminal tab title
+ * Format: "mstro: directory_name"
+ * Uses ANSI escape sequence: ESC ] 0 ; title BEL
+ */
+function setTerminalTitle(directory: string): void {
+  const dirName = basename(directory) || directory
+  const title = `mstro: ${dirName}`
+  // ESC ] 0 ; title BEL - sets both window title and tab title
+  process.stdout.write(`\x1b]0;${title}\x07`)
+}
+// Create Hono app with type inference
+const app = new Hono()
+// Configuration
+const DEFAULT_PORT = 4101
+const REQUESTED_PORT = process.env.PORT ? parseInt(process.env.PORT, 10) : DEFAULT_PORT
+const WORKING_DIR = process.env.MSTRO_WORKING_DIR || process.env.WORKING_DIR || process.cwd()
+const IS_PRODUCTION = process.env.NODE_ENV === 'production'
+/**
+ * Ensure .claude/settings.json exists with recommended settings
+ * for optimal Claude Code performance with Mstro
+ */
+function ensureClaudeSettings(workingDir: string): void {
+  const claudeDir = join(workingDir, '.claude')
+  const settingsPath = join(claudeDir, 'settings.json')
+  // Create .claude directory if it doesn't exist
+  if (!existsSync(claudeDir)) {
+    mkdirSync(claudeDir, { recursive: true })
+  }
+  // Recommended settings for Mstro
+  const recommendedSettings = {
+    env: {
+      CLAUDE_CODE_MAX_OUTPUT_TOKENS: "64000",
+      DISABLE_NONESSENTIAL_TRAFFIC: "1"
+    }
+  }
+  // If settings.json doesn't exist, create it
+  if (!existsSync(settingsPath)) {
+    writeFileSync(settingsPath, JSON.stringify(recommendedSettings, null, 2))
+    console.log(`📝 Created .claude/settings.json with recommended settings`)
+  } else {
+    // If it exists, check if our env settings are present and merge if needed
+    try {
+      const existingSettings = JSON.parse(readFileSync(settingsPath, 'utf-8'))
+      let updated = false
+      // Ensure env object exists
+      if (!existingSettings.env) {
+        existingSettings.env = {}
+        updated = true
+      }
+      // Add our recommended env settings if they don't exist
+      if (!existingSettings.env.CLAUDE_CODE_MAX_OUTPUT_TOKENS) {
+        existingSettings.env.CLAUDE_CODE_MAX_OUTPUT_TOKENS = "64000"
+        updated = true
+      }
+      if (!existingSettings.env.DISABLE_NONESSENTIAL_TRAFFIC) {
+        existingSettings.env.DISABLE_NONESSENTIAL_TRAFFIC = "1"
+        updated = true
+      }
+      if (updated) {
+        writeFileSync(settingsPath, JSON.stringify(existingSettings, null, 2))
+        console.log(`📝 Updated .claude/settings.json with recommended env settings`)
+      }
+    } catch (_e) {
+      // If we can't parse the existing file, don't overwrite it
+      console.warn(`⚠️ Could not parse existing .claude/settings.json, skipping update`)
+    }
+  }
+}
+// Ensure Claude settings on startup
+ensureClaudeSettings(WORKING_DIR)
+// Set terminal tab title to show mstro is running and which directory
+setTerminalTitle(WORKING_DIR)
+// Initialize services
+const authService = new AuthService()
+const instanceRegistry = new InstanceRegistry()
+const fileService = new FileService(WORKING_DIR)
+const wsHandler = new WebSocketImproviseHandler()
+// Instance registration deferred to startServer() when port is known
+let _currentInstance: any
+// Global middleware
+// In production, restrict CORS to block cross-origin browser requests to localhost.
+// In dev, allow localhost origins on any port for local frontend dev servers.
+app.use('*', cors({
+  origin: (origin) => {
+    if (!origin) return 'http://localhost'
+    try {
+      const url = new URL(origin)
+      if (url.hostname === 'localhost' || url.hostname === '127.0.0.1') {
+        return origin
+      }
+    } catch {}
+    return 'http://localhost'
+  }
+}))
+app.use('*', logger())
+// ========================================
+// Authentication Middleware
+// ========================================
+const authMiddleware = async (c: any, next: any) => {
+  // Skip auth for health check and config
+  const publicPaths = ['/health', '/api/config']
+  if (publicPaths.some(path => c.req.path.startsWith(path))) {
+    return next()
+  }
+  // Require the local session token for localhost security.
+  // This prevents other local processes or malicious websites from
+  // calling the API without the session token from ~/.mstro/session-token.
+  const token = c.req.header('x-session-token')
+  if (!token || !authService.validateLocalToken(token)) {
+    return c.json({ error: 'Unauthorized' }, 401)
+  }
+  return next()
+}
+app.use('/api/*', authMiddleware)
+// ========================================
+// Health & Configuration
+// ========================================
+// Read version from package.json once at startup
+const PKG_VERSION = (() => {
+  try {
+    const pkg = JSON.parse(readFileSync(join(import.meta.dirname || '.', '..', 'package.json'), 'utf-8'))
+    return pkg.version || '0.0.0'
+  } catch {
+    return '0.0.0'
+  }
+})()
+app.get('/health', (c) => {
+  return c.json({
+    status: 'ok',
+    timestamp: new Date().toISOString(),
+    version: PKG_VERSION
+  })
+})
+app.get('/api/config', (c) => {
+  return c.json({
+    version: PKG_VERSION
+  })
+})
+// ========================================
+// Mount Routes
+// ========================================
+app.route('/api/instances', createInstanceRoutes(instanceRegistry))
+app.route('/api/shutdown', createShutdownRoute(instanceRegistry))
+app.route('/api/improvise', createImproviseRoutes(WORKING_DIR))
+app.route('/api/files', createFileRoutes(fileService))
+app.route('/api/notifications', createNotificationRoutes(WORKING_DIR))
+// ========================================
+// Static File Serving (Production Only)
+// ========================================
+if (IS_PRODUCTION) {
+  // For production static file serving, use a reverse proxy like nginx
+  // or implement a simple static file middleware if needed
+  console.log('Production mode: serve static files via nginx or similar')
+}
+// ========================================
+// 404 & Error Handlers
+// ========================================
+app.notFound((c) => {
+  return c.json({ error: 'Not found' }, 404)
+})
+app.onError((err, c) => {
+  const errorId = randomBytes(4).toString('hex')
+  console.error(`Server error [${errorId}]:`, err)
+  captureException(err, { errorId, path: c.req.path, method: c.req.method })
+  return c.json({
+    error: 'Internal server error',
+    errorId,
+    message: 'Something went wrong. If this persists, report this error ID to support.'
+  }, 500)
+})
+// ========================================
+// Node.js Server with WebSocket Support
+// ========================================
+/**
+ * Wrap a ws WebSocket to match our WSContext interface
+ */
+function wrapWebSocket(ws: NodeWebSocket, workingDir: string): WSContext {
+  return {
+    send: (data: string | Buffer) => ws.send(data),
+    close: () => ws.close(),
+    readyState: ws.readyState,
+    _workingDir: workingDir,
+    _ws: ws
+  } as WSContext
+}
+/**
+ * Create a virtual WebSocket context that sends responses through the platform relay
+ * This allows messages from the web (via platform) to be handled by the same wsHandler
+ */
+function createPlatformRelayContext(
+  platformSend: (message: any) => void,
+  workingDir: string
+): WSContext {
+  return {
+    send: (data: string | Buffer) => {
+      // Parse the response and send through platform relay
+      try {
+        const response = typeof data === 'string' ? JSON.parse(data) : JSON.parse(data.toString())
+        platformSend(response)
+      } catch (e) {
+        // If not JSON, send as-is (shouldn't happen with our protocol)
+        console.error('[PlatformRelay] Failed to parse response:', e)
+      }
+    },
+    close: () => {
+      // No-op for platform relay - connection is managed by PlatformConnection
+    },
+    readyState: 1, // WebSocket.OPEN
+    _workingDir: workingDir,
+    _isPlatformRelay: true
+  } as WSContext
+}
+// Start server with dynamic port selection
+async function startServer() {
+  // Initialize error tracking (must be first)
+  initSentry()
+  // Initialize analytics (fetches config from platform)
+  await initAnalytics()
+  const PORT = await findAvailablePort(REQUESTED_PORT, 20)
+  if (PORT !== REQUESTED_PORT) {
+    console.log(`⚠️  Port ${REQUESTED_PORT} in use, using port ${PORT}`)
+  }
+  _currentInstance = instanceRegistry.register(PORT, WORKING_DIR)
+  // Create HTTP server with Hono
+  const server = serve({
+    fetch: app.fetch,
+    port: PORT
+  })
+  // Create WebSocket server attached to the HTTP server
+  const wss = new WebSocketServer({ server: server as any })
+  wss.on('connection', (ws: NodeWebSocket, req: IncomingMessage) => {
+    const url = new URL(req.url || '/', `http://localhost:${PORT}`)
+    // Only handle /ws endpoint
+    if (url.pathname !== '/ws') {
+      ws.close(1008, 'Invalid WebSocket path')
+      return
+    }
+    // Require local session token for WebSocket connections
+    const wsToken = url.searchParams.get('token')
+    if (!wsToken || !authService.validateLocalToken(wsToken)) {
+      ws.close(4001, 'Unauthorized')
+      return
+    }
+    // Always use the server's working directory — don't allow clients to override
+    const workingDir = WORKING_DIR
+    const wrappedWs = wrapWebSocket(ws, workingDir)
+    wsHandler.handleConnection(wrappedWs, workingDir)
+    ws.on('message', (data: Buffer | string) => {
+      const message = typeof data === 'string' ? data : data.toString('utf-8')
+      wsHandler.handleMessage(wrappedWs, message, workingDir)
+    })
+    ws.on('close', () => {
+      wsHandler.handleClose(wrappedWs)
+    })
+    ws.on('error', (error: Error) => {
+      console.error('[WebSocket] Error:', error)
+      captureException(error, { context: 'websocket.connection' })
+    })
+  })
+  console.log(`🚀 Mstro Server (Node.js + Hono) on port ${PORT}`)
+  console.log(`📁 Working directory: ${WORKING_DIR}`)
+  console.log(`Runtime: Node.js ${process.version}`)
+  console.log(`Framework: Hono`)
+  // Track server started event
+  trackEvent(AnalyticsEvents.SERVER_STARTED, { port: PORT })
+  // Create a virtual WebSocket context for platform relay
+  // This allows messages from the web (via platform) to use the same wsHandler
+  let platformRelayContext: WSContext | null = null
+  // Queue for messages that arrive before relay context is ready
+  // This handles race conditions where initTab arrives before web_connected
+  let pendingRelayMessages: any[] = []
+  // Connect to platform
+  const platformConnection = new PlatformConnection(WORKING_DIR, {
+    onConnected: (_connectionId) => {
+      console.log(`🎵 Orchestra ready: ${basename(WORKING_DIR)}`)
+      // Set up usage reporter to send token usage to platform
+      wsHandler.setUsageReporter((report) => {
+        platformConnection.send({
+          type: 'reportUsage',
+          data: report
+        })
+      })
+    },
+    onWebConnected: () => {
+      // Create the relay context when web connects
+      platformRelayContext = createPlatformRelayContext(
+        (message) => platformConnection.send(message),
+        WORKING_DIR
+      )
+      // Initialize the connection for the wsHandler
+      wsHandler.handleConnection(platformRelayContext, WORKING_DIR)
+      // Process any messages that arrived before relay context was ready
+      if (pendingRelayMessages.length > 0) {
+        for (const message of pendingRelayMessages) {
+          wsHandler.handleMessage(platformRelayContext, JSON.stringify(message), WORKING_DIR)
+        }
+        pendingRelayMessages = []
+      }
+    },
+    onWebDisconnected: () => {
+      // Clean up when web disconnects
+      if (platformRelayContext) {
+        wsHandler.handleClose(platformRelayContext)
+        platformRelayContext = null
+      }
+      // Clear any pending messages
+      pendingRelayMessages = []
+    },
+    onRelayedMessage: (message) => {
+      // Forward messages from web (via platform) to the wsHandler
+      if (platformRelayContext) {
+        wsHandler.handleMessage(platformRelayContext, JSON.stringify(message), WORKING_DIR)
+      } else {
+        // Queue the message - it will be processed when web_connected arrives
+        pendingRelayMessages.push(message)
+      }
+    }
+  })
+  platformConnection.connect()
+  // Catch unhandled errors at process level
+  process.on('uncaughtException', (err) => {
+    console.error('[Server] Uncaught exception:', err)
+    captureException(err, { context: 'uncaughtException' })
+  })
+  process.on('unhandledRejection', (reason) => {
+    console.error('[Server] Unhandled rejection:', reason)
+    captureException(reason instanceof Error ? reason : new Error(String(reason)), { context: 'unhandledRejection' })
+  })
+  // Cleanup on exit
+  process.on('SIGINT', async () => {
+    trackEvent(AnalyticsEvents.SERVER_STOPPED)
+    await Promise.all([shutdownAnalytics(), flushSentry()])
+    platformConnection.disconnect()
+    instanceRegistry.unregister()
+    // Close all non-persistent terminal sessions (PTY processes)
+    // Note: Persistent (tmux) sessions are intentionally left running
+    getPTYManager().closeAll()
+    wss.close()
+    console.log('\n\n👋 Shutting down gracefully...\n')
+    process.exit(0)
+  })
+  process.on('SIGTERM', async () => {
+    trackEvent(AnalyticsEvents.SERVER_STOPPED)
+    await Promise.all([shutdownAnalytics(), flushSentry()])
+    platformConnection.disconnect()
+    instanceRegistry.unregister()
+    // Close all non-persistent terminal sessions (PTY processes)
+    // Note: Persistent (tmux) sessions are intentionally left running
+    getPTYManager().closeAll()
+    wss.close()
+    console.log('\n\n👋 Shutting down gracefully...\n')
+    process.exit(0)
+  })
+  // Periodic cleanup
+  setInterval(() => {
+    wsHandler.cleanupStaleSessions()
+  }, 5 * 60 * 1000) // Every 5 minutes
+}
+startServer()

package/server/mcp/README.md ADDED Viewed

@@ -0,0 +1,122 @@
+# Mstro MCP Bouncer Server
+This directory contains the Model Context Protocol (MCP) server implementation for Mstro v2's security bouncer.
+## Overview
+The MCP bouncer server provides permission approval/denial for Claude Code tool use via the MCP protocol. It integrates with Mstro's security analysis system to review potentially risky operations before they execute.
+## Architecture
+The bouncer uses a 2-layer security system:
+### Layer 1: Pattern-Based Fast Path (~95% of operations, <5ms)
+- **Critical threats** → Immediate DENY (99% confidence)
+- **Known-safe operations** → Immediate ALLOW (95% confidence)
+- Uses consolidated security patterns
+### Layer 2: Haiku AI Analysis (~5% of operations, 200-500ms)
+- Lightweight AI for ambiguous cases
+- Context-aware decisions with reasoning
+- Uses Claude Code headless pattern (spawn + stdin)
+- Variable confidence (50-90%)
+## Files
+- **server.ts** - Main MCP server entry point
+- **bouncer-integration.ts** - Core security review logic
+- **security-patterns.ts** - Pattern definitions for fast-path security checks
+- **security-audit.ts** - Audit logging system
+## Usage
+### Starting the Server
+```bash
+# From mstro-v2 root directory
+npm run dev:mcp
+# Or directly with bun
+bun run server/mcp/server.ts
+```
+### Configuration
+The server is configured via `mstro-bouncer-mcp.json` in the project root:
+```json
+{
+  "mcpServers": {
+    "mstro-bouncer": {
+      "command": "bun",
+      "args": ["run", "server/mcp/server.ts"],
+      "description": "Mstro security bouncer for approving/denying Claude Code tool use",
+      "env": {
+        "BOUNCER_USE_AI": "true"
+      }
+    }
+  }
+}
+```
+### Using with Claude Code
+```bash
+claude --print --permission-prompt-tool mcp__mstro-bouncer__approval_prompt \
+  --mcp-config mstro-bouncer-mcp.json \
+  "your prompt here"
+```
+## Environment Variables
+- **BOUNCER_USE_AI** - Enable/disable AI analysis (default: `true`)
+  - Set to `false` to use only pattern-based checks
+- **CLAUDE_COMMAND** - Claude CLI command (default: `claude`)
+## Security Patterns
+### Critical Threats (Auto-deny)
+- Root/home directory deletion (`rm -rf / or ~`)
+- Fork bombs
+- Disk device overwrites
+- Filesystem formatting
+- Obfuscated code execution
+### Safe Operations (Auto-allow)
+- Read/Glob/Grep operations
+- Common package manager commands (`npm install`, `yarn build`)
+- Git operations (`status`, `log`, `diff`)
+- Safe file deletions (`node_modules`, `dist`, `build`)
+### Requires AI Review
+- Pipe-to-shell from remote sources
+- Sudo operations
+- Writing executable files
+- System directory modifications
+- Custom script execution
+## Audit Logging
+All security decisions are logged to `./logs/security/bouncer-audit.jsonl` in JSON Lines format.
+Example log entry:
+```json
+{
+  "timestamp": "2025-11-15T12:00:00.000Z",
+  "operation": "Bash: rm -rf node_modules",
+  "decision": "allow",
+  "confidence": 95,
+  "reasoning": "Operation matches known-safe patterns",
+  "threatLevel": "low"
+}
+```
+## Performance
+- 95%+ operations resolve in <5ms (Layer 1)
+- 5% require AI analysis (~200-500ms)
+- No ANTHROPIC_API_KEY required - uses existing Claude installation
+## Integration
+The MCP server runs separately from the web application servers and is only needed when using Claude Code's permission prompts feature. It does NOT auto-start with `npm start` or the web servers.

package/server/mcp/bouncer-cli.ts ADDED Viewed

@@ -0,0 +1,127 @@
+#!/usr/bin/env node
+// Copyright (c) 2025-present Mstro, Inc. All rights reserved.
+// Licensed under the MIT License. See LICENSE file for details.
+/**
+ * Bouncer CLI - Shell-callable wrapper for Mstro security bouncer
+ *
+ * This CLI reads Claude Code hook input from stdin and returns a security decision.
+ * It's designed to be called from bouncer.sh.
+ *
+ * Input (stdin): Claude Code PreToolUse hook JSON payload
+ * Output (stdout): JSON decision { decision: "allow"|"deny", reason: string }
+ *
+ * The hook payload includes conversation context that we pass to the bouncer
+ * so it can make context-aware decisions.
+ */
+import { type BouncerReviewRequest, reviewOperation } from './bouncer-integration.js';
+interface HookInput {
+  tool_name?: string;
+  toolName?: string;
+  input?: Record<string, any>;
+  toolInput?: Record<string, any>;
+  // Conversation context from Claude Code hooks
+  session_id?: string;
+  conversation?: {
+    messages?: Array<{
+      role: 'user' | 'assistant';
+      content: string;
+    }>;
+    last_user_message?: string;
+  };
+  // Additional context fields Claude Code may provide
+  tool_use_id?: string;
+  working_directory?: string;
+}
+/**
+ * Read all data from stdin (Node.js compatible)
+ */
+async function readStdin(): Promise<string> {
+  return new Promise((resolve, reject) => {
+    const chunks: Buffer[] = [];
+    process.stdin.on('data', (chunk) => chunks.push(chunk));
+    process.stdin.on('end', () => resolve(Buffer.concat(chunks).toString('utf-8').trim()));
+    process.stdin.on('error', reject);
+  });
+}
+function buildOperationString(toolName: string, toolInput: Record<string, any>): string {
+  if (toolName === 'Bash' && toolInput.command) {
+    return `${toolName}: ${toolInput.command}`;
+  }
+  if (['Write', 'Edit', 'Read'].includes(toolName)) {
+    const filePath = toolInput.file_path || toolInput.filePath || toolInput.path;
+    return filePath ? `${toolName}: ${filePath}` : `${toolName}: ${JSON.stringify(toolInput)}`;
+  }
+  return `${toolName}: ${JSON.stringify(toolInput)}`;
+}
+function extractConversationContext(hookInput: HookInput): string | undefined {
+  const lastUserMessage = hookInput.conversation?.last_user_message;
+  if (lastUserMessage) return `User's request: "${lastUserMessage}"`;
+  const recentMessages = hookInput.conversation?.messages?.slice(-5);
+  if (recentMessages?.length) {
+    return `Recent conversation:\n${recentMessages.map(m => `${m.role}: ${m.content}`).join('\n')}`;
+  }
+  return undefined;
+}
+async function main() {
+  const inputStr = await readStdin();
+  if (!inputStr) {
+    console.log(JSON.stringify({ decision: 'allow', reason: 'Empty input, allowing' }));
+    process.exit(0);
+  }
+  let hookInput: HookInput;
+  try {
+    hookInput = JSON.parse(inputStr);
+  } catch (e) {
+    console.error('[bouncer-cli] Failed to parse input JSON:', e);
+    console.log(JSON.stringify({ decision: 'allow', reason: 'Invalid JSON input, allowing' }));
+    process.exit(0);
+  }
+  const toolName = hookInput.tool_name || hookInput.toolName || 'unknown';
+  const toolInput = hookInput.input || hookInput.toolInput || {};
+  const userRequestContext = extractConversationContext(hookInput);
+  const lastUserMessage = hookInput.conversation?.last_user_message;
+  const recentMessages = hookInput.conversation?.messages?.slice(-5);
+  const bouncerRequest: BouncerReviewRequest = {
+    operation: buildOperationString(toolName, toolInput),
+    context: {
+      purpose: userRequestContext || 'Tool use request from Claude',
+      workingDirectory: hookInput.working_directory || process.cwd(),
+      toolName,
+      toolInput,
+      userRequest: lastUserMessage,
+      conversationHistory: recentMessages?.map(m => `${m.role}: ${m.content}`),
+      sessionId: hookInput.session_id,
+    },
+  };
+  try {
+    const decision = await reviewOperation(bouncerRequest);
+    console.log(JSON.stringify({
+      decision: decision.decision === 'deny' ? 'deny' : 'allow',
+      reason: decision.reasoning,
+      confidence: decision.confidence,
+      threatLevel: decision.threatLevel,
+      alternative: decision.alternative,
+    }));
+  } catch (error: any) {
+    console.error('[bouncer-cli] Error:', error.message);
+    console.log(JSON.stringify({
+      decision: 'allow',
+      reason: `Bouncer error: ${error.message}. Allowing to avoid blocking.`
+    }));
+  }
+}
+main();